Does Gift Cards for WooCommerce have any unpatched vulnerabilities?

Yes — Gift Cards for WooCommerce currently has 1 unpatched vulnerability. We recommend switching to an alternative or applying any available workarounds.

Is Gift Cards for WooCommerce compatible with WordPress 6.3.8?

According to WordPress.org data, Gift Cards for WooCommerce 1.5.8 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

Is Gift Cards for WooCommerce compatible with PHP 5.6+?

Gift Cards for WooCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Gift Cards for WooCommerce updated?

Gift Cards for WooCommerce was last updated on Aug 14, 2023. Frequent updates are generally a positive security signal.

What is Gift Cards for WooCommerce's security score?

Gift Cards for WooCommerce has a WP-Safety security score of 64/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Gift Cards for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-giftcards

Sell giftcards on your WooCommerce website.

100 active installs v1.5.8 PHP 5.6+ WP 4.3+ Updated Aug 14, 2023

gift-cardgift-vouchersgiftcardwoocommercewoocommerce-giftcard

C · Use Caution

CVEs total1

Unpatched1

Last CVEApr 1, 2025

Plugin page Download

Safety Verdict

Is Gift Cards for WooCommerce Safe to Use in 2026?

Use With Caution

Score 64/100

Gift Cards for WooCommerce has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Apr 1, 2025Updated 2yr ago

Risk Assessment

The woo-giftcards plugin version 1.5.8 exhibits a concerning security posture due to a significant number of unprotected entry points. While the plugin demonstrates good practices in areas like SQL query sanitization and output escaping, the presence of four unprotected AJAX handlers presents a critical risk. This means that any unauthenticated user can potentially trigger these handlers, leading to unintended actions or information disclosure within the WordPress environment. The vulnerability history further amplifies these concerns, indicating a pattern of missing authorization vulnerabilities. With one currently unpatched medium severity CVE related to this issue, the plugin has a history of security flaws that haven't been fully addressed. The lack of taint analysis results, while seemingly positive, might also be a reflection of the limited scope of the static analysis rather than a true absence of potential data flow vulnerabilities. Overall, the plugin has some strengths in code hygiene, but the unprotected AJAX endpoints and past vulnerabilities create a substantial risk that requires immediate attention.

Key Concerns

4 unprotected AJAX handlers
1 unpatched medium severity CVE
Limited nonce checks

Vulnerabilities

Gift Cards for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-31781medium · 5.3Missing Authorization

Gift Cards for WooCommerce <= 1.5.8 - Missing Authorization

Apr 1, 2025Unpatched

Code Analysis

Analyzed Mar 16, 2026

Gift Cards for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

43 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

86% escaped50 total outputs

Attack Surface

4 unprotected

Gift Cards for WooCommerce Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_test_emailinc\woo-giftcards-admin-class.php:18

noprivwp_ajax_test_emailinc\woo-giftcards-admin-class.php:19

authwp_ajax_resend_emailinc\woo-giftcards-class.php:34

noprivwp_ajax_resend_emailinc\woo-giftcards-class.php:35

WordPress Hooks 25

actionadmin_enqueue_scriptsinc\woo-giftcards-admin-class.php:16

actionadmin_menuinc\woo-giftcards-admin-class.php:17

actionadd_meta_boxesinc\woo-giftcards-class.php:15

actionsave_postinc\woo-giftcards-class.php:16

filterproduct_type_optionsinc\woo-giftcards-class.php:17

actionwoocommerce_process_product_meta_simpleinc\woo-giftcards-class.php:18

filterwoocommerce_loop_add_to_cart_linkinc\woo-giftcards-class.php:19

actionwoocommerce_before_add_to_cart_buttoninc\woo-giftcards-class.php:20

actionwp_enqueue_scriptsinc\woo-giftcards-class.php:21

filterwoocommerce_cart_item_nameinc\woo-giftcards-class.php:22

actionwoocommerce_after_order_notesinc\woo-giftcards-class.php:23

filterwoocommerce_cart_needs_shippinginc\woo-giftcards-class.php:25

actionwoocommerce_checkout_processinc\woo-giftcards-class.php:27

actionwoocommerce_checkout_create_orderinc\woo-giftcards-class.php:28

actionwoocommerce_thankyouinc\woo-giftcards-class.php:29

actionwoocommerce_order_status_processinginc\woo-giftcards-class.php:30

filterwoocommerce_is_sold_individuallyinc\woo-giftcards-class.php:31

filterwoocommerce_add_to_cart_validationinc\woo-giftcards-class.php:32

filterwoocommerce_checkout_coupon_messageinc\woo-giftcards-class.php:33

filtermanage_edit-shop_coupon_columnsinc\woo-giftcards-class.php:37

actionmanage_posts_custom_columninc\woo-giftcards-class.php:38

actionwp_footerinc\woo-giftcards-class.php:39

actionwoocommerce_before_checkout_forminc\woo-giftcards-class.php:40

actionadmin_noticeswoo-giftcards.php:40

actionplugins_loadedwoo-giftcards.php:47

Maintenance & Trust

Gift Cards for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedAug 14, 2023

PHP min version5.6

Downloads12K

Community Trust

Rating100/100

Number of ratings9

Active installs100

Alternatives

Gift Cards for WooCommerce Alternatives

Ultimate Gift Cards for WooCommerce

woo-gift-cards-lite

Create, sell and manage WooCommerce gift cards to attract more sales and multiply your revenue at your online store.

7K 3 CVEs

Gift Up Gift Cards for WordPress and WooCommerce

gift-up

The simplest way to sell gift cards online. Sell your own gift cards, gift certificates and gift vouchers from inside your WordPress website easily wi …

5K 3 CVEs

GIFT4U – Gift Cards All in One for Woo

gift4u-gift-cards-all-in-one-for-woo

100

Attract customers by unlocking the potential of gift card products. Easily create, sell, and manage a WooCommerce gift card with a few simple steps.

300 No CVEs

Store credit / Gift cards for woocommerce

store-credit-for-woocommerce

Offer store credit or gift cards to customers that they can use until their credit is finished

100 1 CVE

VaocherApp – Gift cards/vouchers system for WordPress & WooCommerce

vaocher-app

Sell your own gift cards, gift vouchers and gift certificates from your WordPress website (WooCommerce compatible) easily in just a few minutes

40 No CVEs

Developer Profile

Gift Cards for WooCommerce Developer Profile

ahmadshyk

5 plugins · 1K total installs

trust score

Avg Security Score

84/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Gift Cards for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woo-giftcards/css/admin.css/wp-content/plugins/woo-giftcards/js/admin.js

Script Paths

/wp-content/plugins/woo-giftcards/js/admin.js

Version Parameters

/wp-content/plugins/woo-giftcards/js/admin.js?ver=/wp-content/plugins/woo-giftcards/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

woo-giftcard-admin-settingswoo-giftcard-setting-labelwoo-giftcard-admin-textfieldtest-emailgiftcard-pt-fieldpro-only

Data Attributes

id="woo-giftcard-test-input"id="woo-giftcard-test-email"name="recipient-name-label"name="recipient-name-desc"name="recipient-email-label"name="recipient-email-desc"+4 more

JS Globals

var woo_giftcard_admin_jsvar woo_giftcard_admin_cssvar Woo_GiftCards_Adminvar Woo_GiftCards

REST Endpoints

/wp-json/wp/v2/test_email

FAQ